Insights
Recent cyber incidents at Jaguar Land Rover and Amazon Web Services
Posted 23/10/2025 – Insights
We are following the impact of the cyber attacks of Jaguar Land Rover (JLR) and more recently Amazon Web Services (AWS) with interest.
JLR suffered a cyber hack on 1st September with the perpetrators thought to be Scattered Lapsus$ Hunters group and the servers of AWS suffered an IT outage earlier this week.
JLR’s cyber attack caused significant disruption to the firm’s production line with subsequently up to 5,000 businesses impacted in the supply chain. Economic losses are expected to be £1.9bn and the incident has been listed as Category 3 by the Cyber Monitoring Centre (out of a maximum of 5). This is expected to be the costliest cyber event in the UK to date. It seems that JLR did not purchase cyber insurance and, therefore, the claim is expected to be fully borne by JLR and the UK government may have to intervene in some regard.
On 20th October, AWS suffered a 17 hour outage on the firm’s Domain Name Server with businesses such as Snapchat, Fortnite, Coinbase and Lloyds Bank all impacted by the incident. Latest estimates suggest that over 50,000 users were impacted but Amazon was able to fix the issue relatively quickly after it was identified. Leading cyber modelling firm CyberCube has described the outage as a ‘moderate incident’ for the cyber market.
Alpha comment
With the growing reliance on IT systems, cyber incidences continue to make headlines in the news. The increased public awareness of cyber insurance is helping to bring new buyers to the market. This seemingly had not filtered through to the risk management of JLR, as it is believed that they had received a quote for cyber coverage but a policy was not bought. Despite some disruption from the AWS outage, it looks to have been resolved quickly and so whilst there will be some loss to the cyber market, we expect it to be similar in size to that of CrowdStrike last year which ended up as a minimal loss.
